Bug #54208 | NO_AUTO_CREATE_USER bypassed with CREATE USER | ||
---|---|---|---|
Submitted: | 3 Jun 2010 16:14 | Modified: | 7 Jun 2010 6:58 |
Reporter: | Ronald Bradford | Email Updates: | |
Status: | Not a Bug | Impact on me: | |
Category: | MySQL Server | Severity: | S3 (Non-critical) |
Version: | 5.1.39 | OS: | MacOS |
Assigned to: | CPU Architecture: | Any | |
Tags: | no_auto_create_user, SQL_MODE |
[3 Jun 2010 16:14]
Ronald Bradford
[7 Jun 2010 6:58]
Sveta Smirnova
Thank you for the report. According to http://dev.mysql.com/doc/refman/5.1/en/server-sql-mode.html#sqlmode_no_auto_create_user: ----<q>---- NO_AUTO_CREATE_USER Prevent the GRANT statement from automatically creating new users if it would otherwise do so, unless a nonempty password also is specified. ----</q>---- This clearly says this SQL mode prevents GRANT statement from automatically creating users, but does not say anything about GRANT should not allow to add grants to existent users independently if they have password or not.